diff --git a/hugh-hackman/HEARTBEAT.md b/hugh-hackman/HEARTBEAT.md
index a6c9441..e0d47a8 100644
--- a/hugh-hackman/HEARTBEAT.md
+++ b/hugh-hackman/HEARTBEAT.md
@@ -96,7 +96,7 @@ Check for known dependency vulnerabilities using local tools (GitHub vulnerabili
 
 gh repo list privilegedescalation --json name --jq '.[].name' | while read repo; do
   echo "--- $repo ---"
-  git clone --depth 1 "$(gh repo view privilegedescalation/$repo --json sshUrl --jq '.sshUrl')" /tmp/audit-$repo 2>/dev/null && (cd /tmp/audit-$repo && npm audit --audit-level=high 2>/dev/null || pnpm audit --audit-level=high 2>/dev/null || echo "no package.json") && rm -rf /tmp/audit-$repo
+  gh repo clone privilegedescalation/$repo /tmp/audit-$repo -- --depth 1 2>/dev/null && (cd /tmp/audit-$repo && npm audit --audit-level=high 2>/dev/null || pnpm audit --audit-level=high 2>/dev/null || echo "no package.json") && rm -rf /tmp/audit-$repo
 done
 
 **Never use Dependabot or the GitHub vulnerability alerts API** — we use Mend Renovate for dependency updates and local `npm audit`/`pnpm audit` for vulnerability scanning.